This rule ensures that RDS DB instances have multiple availability zone enabled for high availability.
Rule | RDS DB instance multiple az should be enabled |
Framework | CISA-cyber-essentials |
Severity | ✔ Low |
Rule Description: RDS DB Instance Multi-AZ Enabled for CISA-Cyber Essentials
This rule ensures that your Amazon RDS (Relational Database Service) DB instance has Multi-AZ (Availability Zone) enabled. Enabling Multi-AZ for your RDS DB instance helps ensure high availability and data durability in the event of an infrastructure failure or maintenance activity in one of the Availability Zones.
Troubleshooting Steps:
Necessary Codes:
There are no specific codes required to enable Multi-AZ for your RDS DB instance. You can achieve this by using the AWS Management Console or the AWS Command Line Interface (CLI).
Step-by-Step Guide:
Method 1: Using the AWS Management Console
Method 2: Using the AWS CLI
Replaceaws rds modify-db-instance --db-instance-identifier <your-db-instance-id> --multi-az
<your-db-instance-id>
with the actual identifier of your RDS DB instance.Note: Enabling Multi-AZ may result in additional costs as it provisions a standby replica in a different Availability Zone to ensure high availability.
Conclusion:
By following the recommended troubleshooting steps and using the provided methods, you can enable Multi-AZ for your RDS DB instance to meet the requirements of CISA-Cyber Essentials. This ensures improved availability and durability of your database system.